$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/81b84b72-b720-494f-b1f4-ec011eb6a41b.roa File: 81b84b72-b720-494f-b1f4-ec011eb6a41b.roa (raw, json) Hash identifier: /9od91QDv7eFUsngo6aS59Zp+no+p+YTb1ZoWBphPss= Subject key identifier: D3:A4:38:6A:5E:45:1B:58:50:EF:ED:9D:29:76:5E:3C:68:19:88:57 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7D11375025A3EE6C21FCA856C1A8CE7EB8C4DE06 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/81b84b72-b720-494f-b1f4-ec011eb6a41b.roa Signing time: Wed 18 Jun 2025 00:30:06 +0000 ROA not before: Wed 18 Jun 2025 00:30:06 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 801 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:11:37:50:25:a3:ee:6c:21:fc:a8:56:c1:a8:ce:7e:b8:c4:de:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 18 00:30:06 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=e639c5bea1958d288bdf304b59acb8612862ba7df5473ee80293ef72376fdcf6, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:1d:38:54:de:14:c4:55:4e:fd:c1:5a:b3:41: 98:5e:cd:73:bf:49:2c:40:6a:01:af:24:32:8a:b7: 76:bc:97:27:01:e1:de:43:28:9a:b3:d0:ee:bb:11: 5f:4d:62:a5:77:29:49:be:80:76:62:53:cd:f1:36: 9e:e8:ab:01:7b:14:10:c8:ff:7b:32:3c:49:3d:5f: 6a:dd:45:42:5b:4f:e1:53:e5:45:c6:c9:70:0e:66: 8e:24:db:72:fc:88:51:87:ba:c5:7b:01:c3:af:f3: ac:79:e7:b1:83:a2:98:5f:53:63:4d:9e:d6:ab:79: 76:89:61:2c:5c:98:10:44:12:46:e2:50:f0:c2:41: dc:62:53:12:22:17:19:87:43:83:29:92:b4:56:0c: 61:4a:be:28:25:72:e9:77:a6:9b:f7:e9:1e:d6:87: 78:8b:5f:88:36:24:4f:8c:58:49:9f:6f:38:71:e7: b8:bb:a2:0f:97:dd:f1:18:83:f1:54:65:f9:2b:f3: be:ed:4e:53:c9:e3:a2:aa:43:d9:ac:55:13:90:60: be:2d:d9:fd:8a:40:0e:9e:ac:b9:c1:62:5e:c8:66: c7:54:1e:1d:e3:e1:9f:ba:11:cd:ee:a6:e2:51:50: 9a:38:e1:a2:c2:ca:9f:5d:c1:92:69:89:0a:2f:76: 9a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A4:38:6A:5E:45:1B:58:50:EF:ED:9D:29:76:5E:3C:68:19:88:57 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/81b84b72-b720-494f-b1f4-ec011eb6a41b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 7b:93:9b:0a:1b:50:80:7c:bc:32:15:d0:ef:a2:81:4e:b3:44: 9e:d0:18:5f:7f:5d:ea:96:f3:77:b1:63:7f:f9:fc:cf:5b:55: 30:22:a6:ab:6e:59:43:48:7b:95:70:dd:02:e1:dd:c8:d6:4c: 8a:6b:1c:86:1a:bc:72:8a:5a:a5:b9:6b:94:b6:94:8f:fa:31: 25:df:5f:96:f5:2c:db:af:c4:90:e0:45:87:2d:cf:fd:8f:cd: 79:77:63:de:9e:7b:68:e4:9d:85:60:6b:60:01:0c:46:ed:8c: 6f:ef:c2:05:b2:57:4a:1b:8e:0e:f3:62:04:ac:00:f9:47:69: 62:75:3f:f9:34:61:b7:67:1e:6b:46:eb:05:f0:66:47:2d:80: bf:2c:cf:34:87:93:7d:68:00:93:a2:da:c8:0e:7c:80:d0:76: 0f:30:29:ee:ad:2e:9e:21:21:15:70:b4:1f:b0:24:fd:3a:d7: d0:f7:60:d6:f4:c9:7a:a8:03:c8:cc:54:b0:c3:ac:b7:e3:41: 8c:1c:e1:5e:f7:a8:e0:f8:a7:f2:e6:d3:6a:e9:fa:5c:1e:71: dc:5a:a2:f5:66:a2:c5:ef:b5:7e:e8:98:93:8a:11:8f:0b:2b: d3:b2:f2:0a:71:43:d9:1e:d9:c0:f9:ce:85:ae:8e:4b:14:b7: 71:0c:e4:85 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUfRE3UCWj7mwh/KhWwajOfrjE3gYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE4MDAzMDA2WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjM5YzViZWExOTU4ZDI4OGJkZjMwNGI1OWFjYjg2MTI4 NjJiYTdkZjU0NzNlZTgwMjkzZWY3MjM3NmZkY2Y2MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8HThU3hTEVU79wVqzQZhezXO/SSxAagGvJDKKt3a8lycB 4d5DKJqz0O67EV9NYqV3KUm+gHZiU83xNp7oqwF7FBDI/3syPEk9X2rdRUJbT+FT 5UXGyXAOZo4k23L8iFGHusV7AcOv86x557GDophfU2NNntareXaJYSxcmBBEEkbi UPDCQdxiUxIiFxmHQ4MpkrRWDGFKviglcul3ppv36R7Wh3iLX4g2JE+MWEmfbzhx 57i7og+X3fEYg/FUZfkr877tTlPJ46KqQ9msVROQYL4t2f2KQA6erLnBYl7IZsdU Hh3j4Z+6Ec3upuJRUJo44aLCyp9dwZJpiQovdppdAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU06Q4al5FG1hQ7+2dKXZePGgZiFcwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgxYjg0YjcyLWI3MjAtNDk0Zi1iMWY0LWVjMDExZWI2YTQxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQB7k5sKG1CAfLwyFdDvooFOs0Se 0Bhff13qlvN3sWN/+fzPW1UwIqarbllDSHuVcN0C4d3I1kyKaxyGGrxyilqluWuU tpSP+jEl31+W9Szbr8SQ4EWHLc/9j815d2Pennto5J2FYGtgAQxG7Yxv78IFsldK G44O82IErAD5R2lidT/5NGG3Zx5rRusF8GZHLYC/LM80h5N9aACTotrIDnyA0HYP MCnurS6eISEVcLQfsCT9OtfQ92DW9Ml6qAPIzFSww6y340GMHOFe96jg+Kfy5tNq 6fpcHnHcWqL1ZqLF77V+6JiTihGPCyvTsvIKcUPZHtnA+c6Fro5LFLdxDOSF -----END CERTIFICATE-----Generated at Fri Jul 4 13:38:25 2025 by rpki-client